Role Description The AI Security Expert bridges the gap between cybersecurity and machine learning to protect AI systems from emerging threats while ensuring models are secure, compliant, and resilient. You will proactively manage risks unique to AI environments—such as adversarial attacks and data poisoning—to build trustworthy, production-ready systems that are robust against an evolving cyber threat landscape. Core Responsibilities - Pipeline Security: Designing and implementing protocols to secure model training and deployment pipelines against unauthorized access or tampering. - Adversarial Defense: Proactively identifying and preventing adversarial attacks, including input manipulation, model inversion, and data poisoning. - Intellectual Property & Privacy: Implementing advanced measures to protect sensitive dataset privacy and safeguard our proprietary model intellectual property. - Threat Modeling & Red Teaming: Conducting AI-specific threat modeling and internal "red team" exercises to discover vulnerabilities before they can be exploited. - Governance & Compliance: Ensuring all AI initiatives align with global security standards (e.g., ISO/IEC 42001, NIST AI RMF), ethical guidelines, and emerging AI governance frameworks. Qualifications - Process thinking and systems design - Problem solving and analytical skills - Strong stakeholder communication - Strategic thinking with practical implementation ability - Ability to translate technical solutions for non-technical teams Requirements - AI/ML Proficiency: Strong understanding of machine learning frameworks (e.g., PyTorch, TensorFlow) and the underlying mathematics of model architectures. - Adversarial AI Knowledge: Proven experience with adversarial machine learning techniques, such as Gradient-based attacks, Evasion attacks, and Model Extraction. - Secure Software Development: Expertise in securing CI/CD pipelines and containerized environments (Docker, Kubernetes) specifically for ML workloads. - Data Protection: Proficiency in privacy-preserving technologies such as Differential Privacy, Homomorphic Encryption, or Federated Learning. - Cloud Security: Deep experience with security configurations in AWS, Azure, or GCP, specifically regarding managed AI services (e.g., SageMaker, Vertex AI). Outcomes / Success Measures - Reduction in manual processes - Increased operational efficiency - Successful deployment of AI-powered workflows - Improved data-driven decision making - Scalable automation infrastructure Education - A Bachelor’s or Master’s degree in Computer Science, Cybersecurity, Data Science, or a related field. - 5+ years of experience in Cybersecurity, with at least 2 years specifically focused on AI/ML security or research. - Relevant certifications such as CISSP, CISM, or specialized AI certifications (e.g., Certified AI Security Professional) are highly regarded.

• Provide vision and strategic leadership for this department and the ERO Enterprise on new technologies and emerging threats. • Foster a culture of learning/education (for both industry and the ERO Enterprise) on BPS system performance in light of the integration of new technologies. • Lead a high performing team with advanced technical capabilities in pioneering new studies, modeling and statistical analysis methodologies, or novel applications in support tackling new risks. • Create processes that support ERO Enterprise risk identification and mitigations, understanding of Risk Priorities, and basic understanding emergent technical needs. • Actively coordinate work with other departments and with other ERO groups such as Compliance Assurance, Reliability Risk Management and groups in the ERO Enterprise. • Integrate cyber security-informed thinking into all aspects of system planning, operations and restoration. • Direct the development of studies concerning interconnection-wide reliability issues such as oscillatory behavior, system reaction of inverter-based generation, and other factors. • Establish and maintain relationships with industry, regulatory, and governmental organizations involved with electric system reliability (e.g., DOE, FERC, EIA, RTO/ISOs). • Lead efforts to advance the RISC’s risk mitigation recommendations. • Develop industry approaches, best practices related to the security of the bulk power system, taking input from situational awareness, power system planning and operations, reliability assessment, performance analysis, standards, compliance monitoring and other ERO Enterprise programs. • Provide technical expertise to the executive management team, Board of Trustees, and other stakeholder groups. • Direct and manage teams to ensure achievement of departmental and corporate goals and objectives. • Assess individual and team performance at regular intervals and implement corrective actions as necessary. • As a key member of NERC's Leadership Team and as a people manager, lean in to support NERC's employee development, diversity and inclusivity efforts, as well as NERC's corporate culture initiatives.

• Establish and maintain a strong presence in the Security Sales Region • Develop and maintain strong customer relationships • Achieve and exceed assigned quotas and KPI’s • Attend industry events and deliver sales training

• Define, implement, communicate and maintain security strategy, policies, goals and requirements aligned with business strategy, and manage security resources, to support the company’s objectives • Work with the Security Council and Remote’s senior leadership in developing Remote’s Information Security vision, strategy and road-map of Remote’s Security function • Recruit and nurture individual growth to build an autonomous and high performing Security team • Be an advocate of information security best practices and proactively looking to improve and drive Remote’s security posture, driving efforts to improve Security Awareness across company • Drive Remote’s security risk management program, by partnering with Legal, Data Protection and Finance in developing and managing our enterprise risk management framework(s), and collaborating with senior leaders in reducing Information Security risks • Manage and improve upon our Application Security initiatives and personnel to make sure Remote is delivering the most secure Platform possible to its customers • Build a Security Incident Response processes and culture within the Security Team • Report to Remote’s top management about security risks, threats and their potential impact, incidents and security performance • Drive security compliance requirements from customers, standards and regulations • Supervise the management and improvement of Remote’s ISMS as defined in Remote’s ISMS roles and responsibilities document